794fdc2f8f89672837dbdb06c9242b29a0cb711b474e4afc570b70afb48cf350

Sharing

Copy URL

Twitter E-mail

General

Target

794fdc2f8f89672837dbdb06c9242b29a0cb711b474e4afc570b70afb48cf350
Size

618KB
MD5

deb9eb8ad94ccbb6c5da5ef4f5704c68
SHA1

cc964cabeb5bd0c8a85f8dfde9a562620d457e5c
SHA256

794fdc2f8f89672837dbdb06c9242b29a0cb711b474e4afc570b70afb48cf350
SHA512

e6c0c3cae480acf489718ae92477425d0d4f8a404aa4614455c6cf79ce78a26ade8b0c9c3bebc33f131a8482f7f0a1776cd15cc026405fd806b37a6c75afc6e4
SSDEEP

12288:Ap+swvVMG99bhgG1yN83bIfmp+/YBq6SI8/yONe:kwnNhgG1O8rIf7wBqB/yONe

Score

N/A

Malware Config

Signatures

Files

794fdc2f8f89672837dbdb06c9242b29a0cb711b474e4afc570b70afb48cf350
.exe windows x86

3d63ffb39e044ea7837d2b0221a93456

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_onexit
__dllonexit
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_amsg_exit
_acmdln
_cexit
_ismbblead
_XcptFilter
_exit
_c_exit
tolower
_mbsnbicmp
isspace
atof
_mbscspn
memchr
wcspbrk
wcschr
strchr
strrchr
wcslen
??2@YAPAXI@Z
??3@YAXPAX@Z
_getcwd
remove
_makepath
_mbsstr
_mbsnbcmp
iscntrl
_mbspbrk
_splitpath
time
localtime
_memicmp
toupper
floor
isdigit
_mbsrchr
isalnum
isalpha
atol
_mbschr
longjmp
atoi
exit
memmove
_setjmp3

kernel32

GetModuleFileNameA
GetTempPathA
DeleteFileA
CloseHandle
GetCurrentDirectoryA
GetLocalTime
FindClose
FindNextFileA
FindFirstFileA
EnumResourceLanguagesA
WideCharToMultiByte
ReadFile
WriteFile
SetFilePointer
GlobalHandle
IsDBCSLeadByte
GetModuleHandleA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStartupInfoA
LoadLibraryW
GetFileAttributesW
GetModuleHandleW
GetSystemDirectoryW
LoadLibraryA
GetLastError
SetLastError
GetModuleFileNameW
OutputDebugStringA
GetProcAddress
GetFileAttributesA
lstrcmpA
CreateFileA
LocalFree
FormatMessageA
InterlockedExchange
RaiseException
LocalAlloc
FindResourceA
LoadResource
SizeofResource
FreeResource
GlobalSize
GlobalReAlloc
GlobalAlloc
GlobalLock
GlobalFree
GlobalUnlock
GetCurrentThread
lstrlenA
MulDiv
GetACP
MultiByteToWideChar
FreeLibrary
GetTickCount
GetLocaleInfoA
GetCPInfo
SetErrorMode
GetSystemDefaultLangID
GetVersion
lstrcmpiA
LockResource
LoadLibraryExW

user32

SendDlgItemMessageA
CheckDlgButton
IsDlgButtonChecked
GetDlgItemTextA
GetDlgItemInt
IsChild
GetDialogBaseUnits
GetDoubleClickTime
CreateDialogParamA
RegisterWindowMessageA
CheckRadioButton
ShowScrollBar
SetScrollInfo
GetScrollInfo
GetDlgCtrlID
GetWindowTextLengthA
GetLastActivePopup
WaitMessage
GetUpdateRect
GetMessageTime
ExcludeUpdateRgn
GetUpdateRgn
ValidateRect
IsRectEmpty
InvertRect
FrameRect
SetParent
RegisterClipboardFormatA
IsClipboardFormatAvailable
GetPriorityClipboardFormat
OpenClipboard
CloseClipboard
EmptyClipboard
GetClipboardFormatNameA
SetClipboardData
GetClipboardData
GetCaretPos
SetCaretPos
CreateCaret
DestroyCaret
BeginPaint
EndPaint
GetWindowDC
VkKeyScanA
SetClassLongA
DestroyCursor
EnumChildWindows
DeferWindowPos
EndDeferWindowPos
BeginDeferWindowPos
RegisterClassExA
GetClassInfoA
UnregisterClassA
CreateWindowExA
GetMenuItemID
EnableMenuItem
DrawMenuBar
GetSystemMenu
RemoveMenu
GetMenuStringA
GetSubMenu
LoadMenuA
ModifyMenuA
CheckMenuItem
DefMDIChildProcA
GetWindowPlacement
SetWindowPos
GetWindow
GetTopWindow
DeleteMenu
GetDlgItem
GetWindowTextA
SetDlgItemTextA
SetWindowTextA
PostMessageA
IsWindow
LoadIconA
CreateMenu
AppendMenuA
SetMenu
DefFrameProcA
PostQuitMessage
SetWindowsHookExA
UnhookWindowsHookEx
GetMessagePos
GetMenu
GetMenuItemCount
ReplyMessage
IsDialogMessageA
TranslateMDISysAccel
IsZoomed
KillTimer
FlashWindow
EqualRect
DestroyMenu
GetSystemMetrics
LoadBitmapA
SetMessageQueue
MessageBoxA
CallNextHookEx
IsIconic
EnableWindow
GetActiveWindow
IsWindowEnabled
GetAsyncKeyState
SetFocus
InSendMessage
SetTimer
GetMessageA
TranslateMessage
DispatchMessageA
GetClassLongA
ShowWindow
SetCapture
SetRect
PeekMessageA
GetKeyState
ReleaseCapture
PtInRect
CallWindowProcA
CharUpperA
GetFocus
GetSysColor
DrawFocusRect
GetWindowRect
ScreenToClient
MoveWindow
SetWindowLongA
DefWindowProcA
DestroyWindow
GetScrollPos
SetScrollRange
GetWindowLongA
GetParent
BringWindowToTop
GetScrollRange
UpdateWindow
ScrollWindow
SetScrollPos
GetClientRect
IntersectRect
OffsetRect
ShowCursor
MessageBeep
GetCapture
GetCursorPos
IsWindowVisible
CharLowerA
IsCharAlphaA
IsCharAlphaNumericA
FillRect
InvalidateRect
ClientToScreen
DdeAccessData
DdePostAdvise
DdeUnaccessData
SetForegroundWindow
InsertMenuA
DdeFreeDataHandle
DdeAddData
DdeCreateDataHandle
DdeGetData
DdeCmpStringHandles
DdeKeepStringHandle
GetForegroundWindow
DdeEnableCallback
DdeUninitialize
DdeInitializeA
DdeNameService
DdeClientTransaction
DdeDisconnect
DdeFreeStringHandle
DdeCreateStringHandleA
DdeConnect
DdeGetLastError
DdeQueryStringA
GetClassInfoExA
LoadCursorA
DialogBoxIndirectParamA
GetDC
ReleaseDC
EnumThreadWindows
GetPropA
RemovePropA
SetPropA
TrackPopupMenu
InflateRect
ShowCaret
HideCaret
SetActiveWindow
InvalidateRgn
EndDialog
RegisterClassA
WindowFromPoint
SetCursor
SendMessageA
DrawTextA

gdi32

SelectPalette
GetStockObject
CreateRectRgn
CombineRgn
GetObjectA
Rectangle
ExcludeClipRect
GetTextExtentPointA
GetTextMetricsA
GetTextColor
TextOutA
SelectObject
CreateFontIndirectA
GetCurrentObject
SetTextColor
RectVisible
InvertRgn
GetClipBox
GetNearestColor
StretchBlt
CreateCompatibleBitmap
Ellipse
GetBitmapBits
Polygon
CreatePolygonRgn
PtInRegion
RectInRegion
UnrealizeObject
CreateSolidBrush
StretchDIBits
GetDIBits
CreateDIBitmap
RealizePalette
PatBlt
SetROP2
GetROP2
GetBkColor
SetRectRgn
OffsetRgn
GetCharWidthA
GetTextFaceA
SetBkMode
CreateCompatibleDC
DeleteDC
RestoreDC
SaveDC
SetMapMode
SetMapperFlags
GetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
GetWindowOrgEx
CreateBitmap
CreatePen
MoveToEx
SetBrushOrgEx
SetStretchBltMode
GetTextExtentPoint32A
LineTo
BitBlt
GetDeviceCaps
DeleteObject
CreatePatternBrush
SetBkColor
FillRgn
ExtTextOutA

comctl32

PropertySheetA

comdlg32

CommDlgExtendedError
ChooseFontA
GetSaveFileNameA
GetOpenFileNameA

advapi32

RegOpenKeyExA
RegSetValueExA
RegEnumValueA
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

ole32

CoGetMalloc
CoCreateInstance
BindMoniker
OleUninitialize
OleInitialize
StringFromGUID2

oleaut32

SysFreeString
VariantChangeType
VariantClear
VariantInit
SysStringLen
SysAllocString

shlwapi

wnsprintfA

odbc32

ord71
ord52
ord15
ord2
ord1
ord10
ord51
ord8
ord6
ord50
ord23
ord22
ord58
ord72
ord12
ord54
ord5
ord63
ord57
ord41
ord3
ord9
ord14
ord19
ord20
ord44
ord47
ord66
ord67
ord45
ord11
ord18
ord16
ord40
ord4
ord13
ord42

Sections

.text
Size: 540KB - Virtual size: 538KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

QUIT_TEX
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

MAIN_TEX
Size: 4KB - Virtual size: 382B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT_TEX
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

ERROR_TE
Size: 4KB - Virtual size: 53B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DDEQT_TE
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DISPATCH
Size: 4KB - Virtual size: 64B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

GRINIT_T
Size: 4KB - Virtual size: 333B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.AS
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3d63ffb39e044ea7837d2b0221a93456

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

comctl32

comdlg32

advapi32

ole32

oleaut32

shlwapi

odbc32

Sections

.text Size: 540KB - Virtual size: 538KB

QUIT_TEX Size: 4KB - Virtual size: 1KB

MAIN_TEX Size: 4KB - Virtual size: 382B

INIT_TEX Size: 4KB - Virtual size: 3KB

ERROR_TE Size: 4KB - Virtual size: 53B

DDEQT_TE Size: 8KB - Virtual size: 4KB

DISPATCH Size: 4KB - Virtual size: 64B

GRINIT_T Size: 4KB - Virtual size: 333B

.data Size: 24KB - Virtual size: 28KB

.rsrc Size: 16KB - Virtual size: 15KB

.AS Size: 2KB - Virtual size: 4KB

.text
Size: 540KB - Virtual size: 538KB

QUIT_TEX
Size: 4KB - Virtual size: 1KB

MAIN_TEX
Size: 4KB - Virtual size: 382B

INIT_TEX
Size: 4KB - Virtual size: 3KB

ERROR_TE
Size: 4KB - Virtual size: 53B

DDEQT_TE
Size: 8KB - Virtual size: 4KB

DISPATCH
Size: 4KB - Virtual size: 64B

GRINIT_T
Size: 4KB - Virtual size: 333B

.data
Size: 24KB - Virtual size: 28KB

.rsrc
Size: 16KB - Virtual size: 15KB

.AS
Size: 2KB - Virtual size: 4KB